$ rpki-client -vvf repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031363a3a2f34382d3438203d3e203338353236.roa File: 323430353a333734303a393031363a3a2f34382d3438203d3e203338353236.roa (raw, json) Hash identifier: L983emUhtbRHr1YJvy6uSPoEQ8L0BhVva+iUCJ0c6VA= Subject key identifier: 9B:65:6C:5A:ED:49:44:8A:3C:2A:99:92:2A:D1:4D:CA:42:D1:35:1A Certificate issuer: /CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Certificate serial: 37C227655DBA77BCEE725EE0BB971A231C5FDBEB Authority key identifier: 56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031363a3a2f34382d3438203d3e203338353236.roa Signing time: Wed 26 Feb 2025 03:00:03 +0000 ROA not before: Wed 26 Feb 2025 02:55:03 +0000 ROA not after: Wed 25 Feb 2026 03:00:03 +0000 asID: 38526 IP address blocks: 2405:3740:9016::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c2:27:65:5d:ba:77:bc:ee:72:5e:e0:bb:97:1a:23:1c:5f:db:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=560CF5B1622CB492E1C603F69D4FB9C11322520D Validity Not Before: Feb 26 02:55:03 2025 GMT Not After : Feb 25 03:00:03 2026 GMT Subject: CN=9B656C5AED49448A3C2A99922AD14DCA42D1351A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:60:dc:83:98:a2:9f:82:db:71:48:b5:95:99: d1:1d:9f:8f:3e:e3:e6:ec:27:f5:08:99:0a:62:ab: f5:6f:a4:c8:cb:5a:cb:31:ef:8a:de:b8:0f:7a:6b: c6:6e:e6:d5:5c:91:49:19:d9:d2:0c:8b:28:a8:46: 7c:12:de:09:84:ed:86:9d:e9:d2:ce:41:26:41:60: 6b:04:5f:02:03:c9:1a:46:44:b3:e5:14:b0:e5:af: 40:68:0e:81:60:18:ce:25:7d:78:b5:1a:7d:8c:a9: 53:a2:83:6a:53:a0:ff:3b:a7:89:74:a9:a9:86:5b: cf:6f:64:96:4d:9b:fc:3a:9a:1f:14:4f:7a:a9:be: 51:74:3b:8e:14:90:93:a8:03:e4:50:91:0f:51:a7: 46:4b:1b:a9:a5:6d:db:b0:66:72:04:82:a3:3c:38: 23:06:1c:a7:dc:fa:16:81:63:a1:53:09:60:36:52: 47:dd:8b:ff:f2:0f:f7:f1:fb:ce:8f:32:4c:f1:46: f6:eb:be:27:90:ac:5d:18:ed:50:49:5c:38:4b:9e: c0:81:d6:0c:7e:48:a0:3d:1f:83:34:e8:3e:6d:b2: e5:38:b3:63:66:23:e2:87:22:df:53:4c:73:ec:ab: 03:4c:3b:cb:3d:c8:a1:41:7f:43:91:85:f8:3f:2e: af:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:65:6C:5A:ED:49:44:8A:3C:2A:99:92:2A:D1:4D:CA:42:D1:35:1A X509v3 Authority Key Identifier: keyid:56:0C:F5:B1:62:2C:B4:92:E1:C6:03:F6:9D:4F:B9:C1:13:22:52:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/560CF5B1622CB492E1C603F69D4FB9C11322520D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/560CF5B1622CB492E1C603F69D4FB9C11322520D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e65e7810-67f4-41c2-8034-4652733b8dd2/0/323430353a333734303a393031363a3a2f34382d3438203d3e203338353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3740:9016::/48 Signature Algorithm: sha256WithRSAEncryption c6:90:14:19:ed:ac:43:35:32:c0:de:2a:95:cc:93:e5:08:9b: 8c:f8:88:58:bf:97:90:43:95:e6:5c:e9:c7:ef:28:0c:d4:89: 73:d8:7c:fc:15:3d:4b:1a:ca:03:43:c5:93:f2:a2:1a:4b:36: 10:40:bb:0a:a1:2e:63:de:8b:ec:41:21:cf:e0:0d:cf:ed:eb: a2:ba:15:d7:28:9e:8d:0a:be:49:97:4a:5b:1e:e1:26:f5:76: 80:75:1d:6f:b8:e9:70:87:41:4f:c1:8a:79:9f:9e:27:ff:0c: 52:92:30:72:38:da:53:3c:e0:d4:c8:1d:a8:3f:e2:44:40:51: 9b:ec:a2:8e:35:23:1c:d5:f8:72:f0:f8:4b:a6:0c:91:fa:58: 8c:c2:1a:c5:65:7c:c3:6d:81:c0:8a:33:5d:7b:d4:9d:6c:c6: af:2e:ae:a3:4e:a3:bf:13:d4:19:5d:cc:5d:fe:aa:4b:b5:08: cf:90:4d:83:7c:9f:9a:b8:16:d5:8d:b3:e6:b4:fc:0c:01:c2: 78:29:4c:e4:3a:4a:98:52:0a:da:21:41:70:45:97:ff:5b:d4: 7d:81:32:1d:67:ab:42:b0:ea:7f:d9:20:ba:63:fa:ca:71:2d: f7:f8:02:36:1b:d0:9d:f4:a0:16:d3:a1:55:e5:d8:f4:da:b4: 6c:a8:f9:af -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUN8InZV26d7zucl7gu5caIxxf2+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzEx MzIyNTIwRDAeFw0yNTAyMjYwMjU1MDNaFw0yNjAyMjUwMzAwMDNaMDMxMTAvBgNV BAMTKDlCNjU2QzVBRUQ0OTQ0OEEzQzJBOTk5MjJBRDE0RENBNDJEMTM1MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7YNyDmKKfgttxSLWVmdEdn48+ 4+bsJ/UImQpiq/VvpMjLWssx74reuA96a8Zu5tVckUkZ2dIMiyioRnwS3gmE7Yad 6dLOQSZBYGsEXwIDyRpGRLPlFLDlr0BoDoFgGM4lfXi1Gn2MqVOig2pToP87p4l0 qamGW89vZJZNm/w6mh8UT3qpvlF0O44UkJOoA+RQkQ9Rp0ZLG6mlbduwZnIEgqM8 OCMGHKfc+haBY6FTCWA2Ukfdi//yD/fx+86PMkzxRvbrvieQrF0Y7VBJXDhLnsCB 1gx+SKA9H4M06D5tsuU4s2NmI+KHIt9TTHPsqwNMO8s9yKFBf0ORhfg/Lq+PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUm2VsWu1JRIo8KpmSKtFNykLRNRowHwYDVR0j BBgwFoAUVgz1sWIstJLhxgP2nU+5wRMiUg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NjVlNzgxMC02N2Y0LTQxYzItODAzNC00NjUyNzMzYjhkZDIvMC81NjBDRjVCMTYy MkNCNDkyRTFDNjAzRjY5RDRGQjlDMTEzMjI1MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwQ0Y1QjE2MjJDQjQ5MkUxQzYwM0Y2OUQ0RkI5QzExMzIy NTIwRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2NWU3ODEwLTY3ZjQtNDFjMi04 MDM0LTQ2NTI3MzNiOGRkMi8wLzMyMzQzMDM1M2EzMzM3MzQzMDNhMzkzMDMxMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAU3 QJAWMA0GCSqGSIb3DQEBCwUAA4IBAQDGkBQZ7axDNTLA3iqVzJPlCJuM+IhYv5eQ Q5XmXOnH7ygM1Ilz2Hz8FT1LGsoDQ8WT8qIaSzYQQLsKoS5j3ovsQSHP4A3P7eui uhXXKJ6NCr5Jl0pbHuEm9XaAdR1vuOlwh0FPwYp5n54n/wxSkjByONpTPODUyB2o P+JEQFGb7KKONSMc1fhy8PhLpgyR+liMwhrFZXzDbYHAijNde9SdbMavLq6jTqO/ E9QZXcxd/qpLtQjPkE2DfJ+auBbVjbPmtPwMAcJ4KUzkOkqYUgraIUFwRZf/W9R9 gTIdZ6tCsOp/2SC6Y/rKcS33+AI2G9Cd9KAW06FV5dj02rRsqPmv -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:39 2025 by rpki-client